SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsUnlock the full potential of your career with cyber security training at SANS Cyber Safari 2025. Guided by world-renowned instructors at the forefront of the field, this event provides exclusive access to live industry experts, ensuring you stay ahead of the curve.
Immerse yourself in a learning environment that features industry-leading hands-on labs, simulations, and exercises, all geared towards practical application in your professional endeavors. Seize the opportunity to hone your skills during bonus sessions and activities, backed by SANS unwavering commitment to excellence and expertise.
Whether you're a seasoned professional or new to the field, SANS Cyber Safari 2025 equips you with the skills and knowledge needed to navigate the ever-evolving threat landscape.
Please note, courses are available In-Person in Riyadh, SA and Live Online during this event. Register now to secure your spot.
Kudos to the event team and backstage heroes for ensuring that we have fun and comfortable learning experience. The hotel, food and environment, everything is beyond expectations. Would love to come back and attend more trainings with SANS Gulf Region.
The instructor was excellent, making complex topics easy to understand. Their engaging teaching style and commitment to student understanding greatly enhanced my learning experience.
Great delivery from the instructor. He was able to explain and provide real life cases to enhance understanding.
The best training experience I have had in my 20 years of professional life.
As part of your SANS training experience, you’ll receive complimentary access to a NetWars Tournament which is either available at the training event you are attending or will be made available through online access if you are attending a Live Online event. The NetWars Tournament is an interactive cyber range event designed to reinforce your learning through hands-on, gamified challenges.
Save $500 USD using the code "EarlyBirdEMEA-USD" and pay for any 4-6 day course (excluding Beta Courses) by September 3, 2025.
Looking for Group Purchasing? Contact Sales
2 Free practice tests when you add a certification exam attempt to your course. Available for select courses below.
Add 4 months of OnDemand access to your course purchase. Only available for courses with an OnDemand option.
Daily required course training hours throughout the week.
Engage in extra learning and activities during SANS events.
Hands-on competitions to test and sharpen your cybersecurity skills.
Large Language Models (LLMs) such as ChatGPT, Claude, and Grok have become very powerful. This talk is full of live demonstrations of the kinds of things information security professionals can do with the LLMs. Examples include analyzing and manipulating shell code, writing exfiltration code, analyzing logs, and more.
Presented by
Timothy McKenzie
Principal Instructor
Registration: All students who register for a 4–6 day course will be eligible to play NetWars for free. Registration for this event will be through your SANS Account Dashboard the week of the event.
About Cyber Defense NetWars: Focused on preventing, analyzing, and defending against complex real-world attack scenarios, including brute-force attacks and ransomware campaigns.
Registration: All students who register for a 4–6 day course will be eligible to play NetWars for free. Registration for this event will be through your SANS Account Dashboard the week of the event.
About Cyber Defense NetWars: Focused on preventing, analyzing, and defending against complex real-world attack scenarios, including brute-force attacks and ransomware campaigns.
Actionable intelligence is only as good as your ability to share it — quickly, reliably, and with the right context. In this talk, we’ll explore how MISP can be used not just as a threat intel repository, but as a powerful engine for real-time collaboration and operational impact. We’ll cover how to make MISP highly available, build and sustain a community around it, and create qualitative events that provide the necessary context for detection, decision-making, and response. You’ll also see how we’re integrating AI into our workflows to improve speed, reduce manual effort, and enrich intelligence automatically — without sacrificing quality. Whether you’re just getting started with MISP or looking to take your threat sharing to the next level, this talk will give you concrete ideas to make it work in high-pressure, real-world environments.
Presented by
Kevin Holvoet
Certified Instructor
Registration: All students who register for a 4–6 day course will be eligible to play NetWars for free. Registration for this event will be through your SANS Account Dashboard the week of the event.
About DFIR NetWars: Focused on digital forensics, incident response, threat hunting, and malware analysis, this tool-agnostic approach covers everything from low-level artifacts to high-level behavioral observations.
Registration: All students who register for a 4–6 day course will be eligible to play NetWars for free. Registration for this event will be through your SANS Account Dashboard the week of the event.
About DFIR NetWars: Focused on digital forensics, incident response, threat hunting, and malware analysis, this tool-agnostic approach covers everything from low-level artifacts to high-level behavioral observations.
In Digital Forensics, Incident Response, and other Cyber Security topics, we're frequently tasked with consuming HUGE amounts of data and finding the "interesting" parts quickly. We've had great tools to do this for decades. But, those tools we're optimized for old computing hardware. In our modern day we have setups with multiple CPU cores and flash storage. This talk will present some techniques to speed up those old techniques fully utilizing modern hardware.
Presented by
Mark Jeanmougin
Certified Instructor
Registration: All students who register for a 4–6 day course will be eligible to play NetWars for free. Registration for this event will be through your SANS Account Dashboard the week of the event.
About Core NetWars: The most comprehensive of the NetWars ranges, this ultimate multi-disciplinary cyber range powers up the most diverse cyber skills. This range is ideal for advancing your cybersecurity prowess in today's dynamic threat landscape. The winning team and the top five solo players from every Core NetWars tournament throughout the year are offered a chance to compete in the annual SANS Core NetWars Tournament of Champions.
Registration: All students who register for a 4–6 day course will be eligible to play NetWars for free. Registration for this event will be through your SANS Account Dashboard the week of the event.
About Core NetWars: The most comprehensive of the NetWars ranges, this ultimate multi-disciplinary cyber range powers up the most diverse cyber skills. This range is ideal for advancing your cybersecurity prowess in today's dynamic threat landscape. The winning team and the top five solo players from every Core NetWars tournament throughout the year are offered a chance to compete in the annual SANS Core NetWars Tournament of Champions.
Riyadh, the capital of Saudi Arabia, is a city where modernity meets tradition. Its rich culture and heritage are showcased at iconic sites like Diriyah, the birthplace of the kingdom, and the historic Masmak Fortress. Savor traditional Saudi dishes such as kabsa, mandi, and sweet dates.Visitors can explore the architectural marvels of the Kingdom Centre, the grandeur of Al Murabba Palace, and the stunning natural beauty of the Edge of the World, making Riyadh a destination of cultural and scenic wonder.
Eliminate the hassle of daily commutes and wasted travel time. You’ll have everything you need—from your training to dining and amenities - all in one centralized, convenient location.
Stay where the action is! Maximize your chances to connect with fellow cybersecurity professionals and industry leaders - from impromptu conversations in the lobby to exclusive after-hours events.
SANS live training events include bonus sessions exclusively at the venue. Staying on-site ensures you won’t miss these opportunities to grow your network and engage with peers beyond the conference agenda.
In the heart of Downtown Riyadh, Hyatt Regency Riyadh Olaya offers a prime location steps from the financial district, with easy access to Olaya Towers, KAFD, and Riyadh International Convention & Exhibition Center. Surrounded by high-end shopping and the vibrant Tahlia Street, it’s an ideal destination for business and leisure. Valet and self-parking is available at the hotel.